Issued:: 2025-05-19
Updated:: 2025-05-19

RHSA-2025:7937 - Security Advisory

Overview
Updated Packages

Synopsis

Important: compat-openssl11 security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for compat-openssl11 is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the 1.1.1 version and is provided for compatibility with previous releases.

Security Fix(es):

openssl: X.400 address type confusion in X.509 GeneralName (CVE-2023-0286)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 9 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
Red Hat Enterprise Linux Server - AUS 9.6 x86_64
Red Hat Enterprise Linux for IBM z Systems 9 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
Red Hat Enterprise Linux for Power, little endian 9 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
Red Hat Enterprise Linux for ARM 64 9 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x

Fixes

BZ - 2164440 - CVE-2023-0286 openssl: X.400 address type confusion in X.509 GeneralName

CVEs

CVE-2023-0286

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 9

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm	SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
x86_64
compat-openssl11-1.1.1k-5.el9_6.1.i686.rpm	SHA-256: 012385114877fd38e012f245b75fe6201eef343545809d7a55f33e5e9c0668b8
compat-openssl11-1.1.1k-5.el9_6.1.x86_64.rpm	SHA-256: e4573a2f07756624a20d93e967f840d5aee748965827067a7516ce0670a13031
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.i686.rpm	SHA-256: 90ea0a344edde87b1b6dcf540d86fe94866347e50ccdc83fdb12bbf20a0ace92
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.x86_64.rpm	SHA-256: 412922ddd386a3fb176cfdf8f6e64b1581110df43b83875ef06e2a9994bbd444
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.i686.rpm	SHA-256: 658814680277a34ff4e470df5978a37bbc677151f0ebf449ceee122c88db0e73
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.x86_64.rpm	SHA-256: 5a6e237ea6b4eab86e38cb660d3424c4669d29e26007b2cde154bc7b819a0fee

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm	SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
x86_64
compat-openssl11-1.1.1k-5.el9_6.1.i686.rpm	SHA-256: 012385114877fd38e012f245b75fe6201eef343545809d7a55f33e5e9c0668b8
compat-openssl11-1.1.1k-5.el9_6.1.x86_64.rpm	SHA-256: e4573a2f07756624a20d93e967f840d5aee748965827067a7516ce0670a13031
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.i686.rpm	SHA-256: 90ea0a344edde87b1b6dcf540d86fe94866347e50ccdc83fdb12bbf20a0ace92
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.x86_64.rpm	SHA-256: 412922ddd386a3fb176cfdf8f6e64b1581110df43b83875ef06e2a9994bbd444
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.i686.rpm	SHA-256: 658814680277a34ff4e470df5978a37bbc677151f0ebf449ceee122c88db0e73
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.x86_64.rpm	SHA-256: 5a6e237ea6b4eab86e38cb660d3424c4669d29e26007b2cde154bc7b819a0fee

Red Hat Enterprise Linux Server - AUS 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm	SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
x86_64
compat-openssl11-1.1.1k-5.el9_6.1.i686.rpm	SHA-256: 012385114877fd38e012f245b75fe6201eef343545809d7a55f33e5e9c0668b8
compat-openssl11-1.1.1k-5.el9_6.1.x86_64.rpm	SHA-256: e4573a2f07756624a20d93e967f840d5aee748965827067a7516ce0670a13031
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.i686.rpm	SHA-256: 90ea0a344edde87b1b6dcf540d86fe94866347e50ccdc83fdb12bbf20a0ace92
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.x86_64.rpm	SHA-256: 412922ddd386a3fb176cfdf8f6e64b1581110df43b83875ef06e2a9994bbd444
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.i686.rpm	SHA-256: 658814680277a34ff4e470df5978a37bbc677151f0ebf449ceee122c88db0e73
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.x86_64.rpm	SHA-256: 5a6e237ea6b4eab86e38cb660d3424c4669d29e26007b2cde154bc7b819a0fee

Red Hat Enterprise Linux for IBM z Systems 9

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm	SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
s390x
compat-openssl11-1.1.1k-5.el9_6.1.s390x.rpm	SHA-256: 67e641c9a86b684e9e3ff85090c23b2a2654bb3287d544c1d7c89ab40ce6bd0a
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.s390x.rpm	SHA-256: ac6f2c3fcb4709a673a270f1bcd9e03a2d9d314cd2496ab6a02176156fb27391
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.s390x.rpm	SHA-256: a339e8456032e6553590ab2c26853ea35aeef39a4901cb1ebbe2a46002756929

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm	SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
s390x
compat-openssl11-1.1.1k-5.el9_6.1.s390x.rpm	SHA-256: 67e641c9a86b684e9e3ff85090c23b2a2654bb3287d544c1d7c89ab40ce6bd0a
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.s390x.rpm	SHA-256: ac6f2c3fcb4709a673a270f1bcd9e03a2d9d314cd2496ab6a02176156fb27391
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.s390x.rpm	SHA-256: a339e8456032e6553590ab2c26853ea35aeef39a4901cb1ebbe2a46002756929

Red Hat Enterprise Linux for Power, little endian 9

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm	SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
ppc64le
compat-openssl11-1.1.1k-5.el9_6.1.ppc64le.rpm	SHA-256: cc4e307266401ba58b33127e54459d7384b4f6f143204f1e9688a14db94d273f
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.ppc64le.rpm	SHA-256: d55786af2c4215555ecd20ea80b531c1eb8930159eaaa7bc70ab9546883ed3b5
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.ppc64le.rpm	SHA-256: f5616c83c44156ca5b7accf210e544b6742e8de101fdc845702c413e9dd20af9

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm	SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
ppc64le
compat-openssl11-1.1.1k-5.el9_6.1.ppc64le.rpm	SHA-256: cc4e307266401ba58b33127e54459d7384b4f6f143204f1e9688a14db94d273f
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.ppc64le.rpm	SHA-256: d55786af2c4215555ecd20ea80b531c1eb8930159eaaa7bc70ab9546883ed3b5
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.ppc64le.rpm	SHA-256: f5616c83c44156ca5b7accf210e544b6742e8de101fdc845702c413e9dd20af9

Red Hat Enterprise Linux for ARM 64 9

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm	SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
aarch64
compat-openssl11-1.1.1k-5.el9_6.1.aarch64.rpm	SHA-256: 4d62a8fe879ba1da792cc23451678608e37b7a5107c6063a8a18c0dd98b0c5b5
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.aarch64.rpm	SHA-256: 68c774ee0e448f74f494c6e3616b1b15cf534c4eec85ac139b6502ea56d4fa90
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.aarch64.rpm	SHA-256: b7b336b61eab8026a01eda64e913c780ce47e832f1d014b71f674e56e79bb438

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm	SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
aarch64
compat-openssl11-1.1.1k-5.el9_6.1.aarch64.rpm	SHA-256: 4d62a8fe879ba1da792cc23451678608e37b7a5107c6063a8a18c0dd98b0c5b5
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.aarch64.rpm	SHA-256: 68c774ee0e448f74f494c6e3616b1b15cf534c4eec85ac139b6502ea56d4fa90
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.aarch64.rpm	SHA-256: b7b336b61eab8026a01eda64e913c780ce47e832f1d014b71f674e56e79bb438

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm	SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
ppc64le
compat-openssl11-1.1.1k-5.el9_6.1.ppc64le.rpm	SHA-256: cc4e307266401ba58b33127e54459d7384b4f6f143204f1e9688a14db94d273f
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.ppc64le.rpm	SHA-256: d55786af2c4215555ecd20ea80b531c1eb8930159eaaa7bc70ab9546883ed3b5
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.ppc64le.rpm	SHA-256: f5616c83c44156ca5b7accf210e544b6742e8de101fdc845702c413e9dd20af9

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm	SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
x86_64
compat-openssl11-1.1.1k-5.el9_6.1.i686.rpm	SHA-256: 012385114877fd38e012f245b75fe6201eef343545809d7a55f33e5e9c0668b8
compat-openssl11-1.1.1k-5.el9_6.1.x86_64.rpm	SHA-256: e4573a2f07756624a20d93e967f840d5aee748965827067a7516ce0670a13031
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.i686.rpm	SHA-256: 90ea0a344edde87b1b6dcf540d86fe94866347e50ccdc83fdb12bbf20a0ace92
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.x86_64.rpm	SHA-256: 412922ddd386a3fb176cfdf8f6e64b1581110df43b83875ef06e2a9994bbd444
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.i686.rpm	SHA-256: 658814680277a34ff4e470df5978a37bbc677151f0ebf449ceee122c88db0e73
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.x86_64.rpm	SHA-256: 5a6e237ea6b4eab86e38cb660d3424c4669d29e26007b2cde154bc7b819a0fee

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm	SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
aarch64
compat-openssl11-1.1.1k-5.el9_6.1.aarch64.rpm	SHA-256: 4d62a8fe879ba1da792cc23451678608e37b7a5107c6063a8a18c0dd98b0c5b5
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.aarch64.rpm	SHA-256: 68c774ee0e448f74f494c6e3616b1b15cf534c4eec85ac139b6502ea56d4fa90
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.aarch64.rpm	SHA-256: b7b336b61eab8026a01eda64e913c780ce47e832f1d014b71f674e56e79bb438

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm	SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
s390x
compat-openssl11-1.1.1k-5.el9_6.1.s390x.rpm	SHA-256: 67e641c9a86b684e9e3ff85090c23b2a2654bb3287d544c1d7c89ab40ce6bd0a
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.s390x.rpm	SHA-256: ac6f2c3fcb4709a673a270f1bcd9e03a2d9d314cd2496ab6a02176156fb27391
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.s390x.rpm	SHA-256: a339e8456032e6553590ab2c26853ea35aeef39a4901cb1ebbe2a46002756929

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation